Why are browser plug-ins so insecure?

Published 10 August 08 12:59 AM | Brandon Live!
Flash and Java, I’m looking at you. You may have heard about the paper released at this week’s Black Hat conference, describing limitations in Windows’ memory protection schemes like ASLR, DEP, etc.  The paper is well-written, very detailed, and I’ve no reason to doubt that it’s pretty accurate.  Some points it makes are things that teams [...] Del.icio.us | Digg It | Technorati | Blinklist | Furl | reddit | DotNetKicks

Read the complete post at http://brandonlive.com/2008/08/09/why-are-browser-plug-ins-so-insecure/

Filed under: , ,